servers / black-duck-security-scanner

Black Duck Security Scanner MCP server

communitystdiolocalverifiedhealthy

AI-powered security scanning using Black Duck Signal for vulnerability detection.


01Tools · 2
ToolRiskSide effectsApproval
run_changes_security_scan
**DEFAULT SECURITY SCAN TOOL** - ALWAYS try this tool first for security analysis. Analyzes code changes for security vulnerabilities using Black Duck Signal. Significantly faster and more efficient than file or project scans. **WHEN TO USE (Default/Preferred):** - Any security scan request (unless user explicitly asks for specific files) - Scanning code changes during development - Pre-commit security checks - Feature branch security review - Incremental security analysis **REQUIREMENTS:** - Project must be a git repository - Git must be installed and available **IF GIT IS NOT AVAILABLE:** - Fall back to a single file scan with the specific file path **Git Modes:** - all-uncommitted: Scans all uncommitted changes (staged + unstaged) - use for active development - reference-branch: Scans all changes since branching from reference (committed + uncommitted) - use for PR review **IMPORTANT:** This is the recommended and most efficient way to perform security scans. Only use the single file scan tool when the project is not a git repository or when the user explicitly requests scanning a specific file.
unknownunknownunknown
run_security_scan
Analyzes a specific file for security vulnerabilities using Black Duck Signal. **WHEN TO USE:** - User explicitly requests scanning a specific file path - Project is NOT a git repository (then provide the changed file) - Git is not available in the environment **PREFER run_changes_security_scan:** - If project is a git repository, use run_changes_security_scan instead for better performance and more relevant results - The changes scan is faster, more cost-effective, and designed for typical development workflows **IMPORTANT:** Do not call this tool consecutively for multiple files. If you need to scan multiple files, use run_changes_security_scan instead, which is optimized for batch scanning.
unknownunknownunknown

02Install & source
npx -y @black-duck/mcp-server
npx

05Provenance & freshness
sourcesOfficial MCP Registry [p1]
last_checked2026-07-07 03:17Z
next_check2026-07-08 07:29Z
cadenceevery 29h
verifiedtools_list:passed handshake:passed metadata:passed
index_statusindex8 unique facts >= 5

06Badge

Add the “as seen on MCPExplorer” badge to your README. Black Duck Security Scanner MCP — as seen on mcpexplorer.com

[![Black Duck Security Scanner MCP — as seen on mcpexplorer.com](https://mcpexplorer.com/badge/black-duck-security-scanner.svg)](https://mcpexplorer.com/servers/black-duck-security-scanner)

Next step

This is one server. A loadout combines the right servers, governance, and proven plays for a whole job — assembled deliberately, not tool-dumped.

Explore loadouts →